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I . Amendments to the Claims 

Please amend the claims as follows with the following 
clean versions of the claims in accordance with 37 CFR § 
1.121; marked-up versions of the claims are presented in the 
5 following section. 

Clean version of amended claims : 
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VI. A method of enabling a proxy to participate in a secure 
c^munication between a client and a server, comprising the 
stepv of : 

eVtablishing a first secure session between the client 
and the pnroxy; 

upon vverifying the first secure session, establishing a 
second securey session between the client and the proxy, the 
second secure session requesting the proxy to act as a conduit 
to the server; 

having the clie'^^t and the server negotiate a session 
master secret; and 

delivering the session master secret to the proxy using 
the first secure session to\enable the proxy to participate in 
the secure communication. 

2 . The method as described in cl^m 1 further including the 
step of having the proxy use the session master secret and a 
session identifier to generate given cryptographic 
information . 

3. (Amended) The method as described in \laim 2 further 
including the step of having the proxy modify req^uests and 
responses following receipt of the session master seriret and 
generation of the given cryptographic information. 

Page 3 

Lita et al . - 09/282,633 



Received from < 866 72S 3680 > at 3^1/03 11:35:40 PM [Eastern Standard Time] 



\ 



Mar 31 "03 10:26p Joseph Buruiell 



866-728-3680 



P-7 




4 .\ (Amended) The method as described in claim 3 wherein 

the p\oxy performs a given service on behalf of the client 
while mdc^ifying content from the server . 

5. The methi^^ as described in claim 4 wherein the given 
service is sele^<^^ from a set of services including 
transcoding, caching, encryption, decryption, monitoring, 
filtering and pre- f et^ching . 

6. The method as described in claim 1 wherein the first and 
second secure sessions confirta to a network security protocol. 



15 



7. The method as described in clasitn 6 wherein the network 
security protocol is SSL. 



8. The method as described in claim 6 wherein the network 
security protocol is TLS . 

20 9. The method as described in claim 1 wherein 6^e server is 

a Web server and the client is a pervasive computirig client. 
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^0. A method of enabling a proxy to participate in a secure 
communication between a client and a server, comprising the 
step 

hav^ing the client request a first secure connection to 
the proxy ^ 

upon axi^henticating validity of a certificate received 
from the proxy\ having the client request a second secure 
connection to proxy, the second secure connection requesting 
the proxy to act asVa conduit to the servers- 
having the proxyXgenerate a session identifier; 
having the client aifid the server negotiate a session 
master secret through the^onduit; 

upon completion of the n(egotiat ion, having the client 
deliver the session master seci^t to the proxy using the first 
secure connection; 

having the proxy use the session master secret and the 
session identifier to generate given cryptographic information 
that is useful for participating in the jsecure communication. 



20 11. (Amended) The method as described ir^ claim 10 further 

including the step of having the proxy modify requests and 
responses following receipt of the session master\secret and 
generation of the given cryptographic information. 
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12 .'"^^Amended) The method as described in claim 11 wherein 

the prqxy performs a given service on behalf of the client 
while moaifying content from the server. 




13 . The method^s described in claim 12 wherein the given 
service is selecteos from a set of services including 
transcoding, caching ,^^^rypt ion, decryption, monitoring, 
filtering and pre-f etchingr . 



14. The method as described in\?laira 10 wherein the first and 
second secure sessions confirm to ^network security protocol 



15 



15. The method as described in claim 14 \tjierein the network 
security protocol is SSL. 

16- The method as described in claim 14 wherein t$^ network 
security protocol is TLS, 
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17. A n^thod for establishing the security of a session 
between a\l.ient and a server, comprising the steps of: 

through a. proxy, conducting a security handshake 
procedure betwee"^ the client and the server to produce a 
session key; and 

transmitting the X^ssion key to the proxy so that the 
proxy can participate in \;ommunications between the client and 
the server during the sessic 

18. The method as described in cl^m 17 wherein the session 
key is transmitted from the client to\the proxy over a secure 
connection . 



19. The method as described in claim 18 where\n the secure 
15 connection between the client and the proxy is created before 

the security handshake procedure and is maintained Dljroughout 
the session. 
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A cryptographic system, comprising: 



5 a network procpcol service for enabling the client and 

server to communicat^v^over a secure connection; 

a computer program\(i) for controlling the client to 
request a first secure connection to the proxy, (ii) 
responsive to authenticating^ validity of a certificate from 
10 the proxy, for controlling the\client to request a second 

secure connection to proxy, the \^ond secure connection 
requesting the proxy to act as a coi^duit to the server, (iii) 
for controlling the client to negotiats^e with the server 
through the conduit to obtain a sessionNnaster ; and (iv) upon 
15 successful completion of the negotiation, ^or controlling the 

client to deliver the session master secret \o the proxy using 
the first secure connection; and 

a computer program (i) for controlling the jj^oxy to use 
the session master secret and a session identifier Vo generate 
20 given cryptographic information, and (ii) for having Nihe proxy 

modify content in communications between the client and\the 
server . 



Page 8 

Lita et al.- 09/282,633 



Received fTofn < 866 728 3680 > at 3/31/03 1 1 :35:4a PM [Eastern Standard Time] 



Mar 31 03 10:27p 



Joseph Buruie 1 1 



866-728-3680 



p. 12 




21. Th.^ cryptographic system as described in claim 20 wherein 
the proxy includes means for providing transcoding services on 
behalf of the^^s^lient . 



X 



22. The cryptographies, system as described in claim 20 wherein 
the proxy includes means ^Eor providing encryption/decryption 
services on behalf of the cli^t. 

23. The cryptographic system as described in claim 20 wherein 
the proxy includes means for providing caching services on 
behalf of the client - 



15 



24. The cryptographic system as described in cla\m 20 wherein 
the proxy includes means for providing monitoring seisvices on 
behalf of the client. 
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25 X (Amended) A computer program product in a computer 

readanl^e medium for use in a cryptographic system including a 
client, a\server, and a proxy, comprising: 

a f irstXroutine (i) for controlling the client to request 
a first secure Connection to the proxy, (ii) responsive to 
authenticating validity of a certificate from the proxy, for 
controlling the clientvto request a second secure connection 
to proxy, the second secure connection requesting the proxy to 
act as a conduit to the serv^, (iii) for controlling the 
client to negotiate with the sebs;yer through the conduit to 
obtain a session master; and (iv) upon successful completion 
of the negotiation, for controlling toe client to deliver the 
session master secret to the proxy using\the first secure 
connection; and \ 

a second routine (i) for controlling the pMxy to use the 
session master secret and a session identifier to^generate 
given cryptographic information, and (ii) for having \:he proxy 
modify content in communications between the client andN:he 
server. \ 
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